1. /
  2. Security Response/
  3. W32.Shadesrat.C

W32.Shadesrat.C

Risk Level 1: Very Low

Discovered:
June 26, 2012
Updated:
July 3, 2012 3:41:31 AM
Type:
Worm
Infection Length:
395,776 bytes
Systems Affected:
Windows 2000, Windows 7, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Server 2008, Windows Vista, Windows XP
W32.Shadesrat.C is a worm that spreads through removable drives. It also opens a back door on the compromised computer.

Antivirus Protection Dates

  • Initial Rapid Release version June 26, 2012 revision 037
  • Latest Rapid Release version July 23, 2013 revision 022
  • Initial Daily Certified version June 27, 2012 revision 006
  • Latest Daily Certified version July 23, 2013 revision 024
  • Initial Weekly Certified release date June 26, 2012
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Medium
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Medium
  • Payload: Opens a back door on the compromised computer.
  • Modifies Files: Modifies the hosts file.
  • Releases Confidential Info: Logs keystrokes.

Distribution

  • Distribution Level: Medium
  • Target of Infection: Removable drives.
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Yana Liu

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report